BT.PasswordSafe.API 1.2.0

.NET 8.0 This package targets .NET 8.0. The package is compatible with this framework or higher.
There is a newer version of this package available.
See the version list below for details. 
dotnet add package BT.PasswordSafe.API --version 1.2.0
                    


                    

                
NuGet\Install-Package BT.PasswordSafe.API -Version 1.2.0
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="BT.PasswordSafe.API" Version="1.2.0" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="BT.PasswordSafe.API" Version="1.2.0" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="BT.PasswordSafe.API" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add BT.PasswordSafe.API --version 1.2.0
                    


                    

                
#r "nuget: BT.PasswordSafe.API, 1.2.0"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#addin nuget:?package=BT.PasswordSafe.API&version=1.2.0
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=BT.PasswordSafe.API&version=1.2.0
                    


                            Install as a Cake Tool

BT.PasswordSafe.API

A .NET package for interacting with BeyondTrust Password Safe API. This package provides a simple and intuitive interface for retrieving passwords, secrets, managed accounts and managed systems from BeyondTrust Password Safe.

Features

  • 🔐 Authentication: Support for both API Key and OAuth authentication methods
  • 🔄 Token Management: Handles token refresh and expiration automatically
  • 🔍 Managed Accounts: Find and manage accounts by ID, name, or system
  • 🔎 Managed Systems: Retrieve managed systems by ID or get a complete list
  • 🔑 Password Retrieval: Get passwords with automatic request handling and conflict resolution
  • 🧩 Error Handling: Gracefully handles API errors including 409 Conflict scenarios
  • 📝 Detailed Logging: Comprehensive logging for troubleshooting and auditing
  • 🛡️ Type Safety: Strongly-typed models for all API interactions
  • 🔒 Secret Retrieval: Get secrets by ID or name (title)

Installation

dotnet add package BT.PasswordSafe.API

Quick Start

Add Required Namespaces

using BT.PasswordSafe.API;
using BT.PasswordSafe.API.Extensions;
using BT.PasswordSafe.API.Interfaces;
using BT.PasswordSafe.API.Models;

Register Services

// Create a service collection
var services = new ServiceCollection();

// Add the PasswordSafe client
services.AddPasswordSafeClient(options =>
{
    options.BaseUrl = "https://your-instance.ps.beyondtrustcloud.com/BeyondTrust/api/public/v3/";
    //options.BaseUrl = "https://your-instance/BeyondTrust/api/public/v3/";
    
    // API Key Authentication
    options.ApiKey = "your-api-key";
    options.RunAsUsername = "your-username";
    options.RunAsPassword = "your-password";
    
    // Or OAuth Authentication
    options.UseOAuth = true;
    options.OAuthClientId = "your-client-id";
    options.OAuthClientSecret = "your-client-secret";
    
    // Other options
    options.TimeoutSeconds = 30;
    options.DefaultPasswordDuration = 60; // minutes
    options.AutoRefreshToken = true;
});

// Build the service provider
var serviceProvider = services.BuildServiceProvider();

// Get the client from the service provider
var client = serviceProvider.GetRequiredService<IPasswordSafeClient>();

Alternate Registration Method using appsettings.json

In Program.cs or Startup.cs:

// Add the PasswordSafe client to the service collection
builder.Services.AddPasswordSafeClient(options => 
    builder.Configuration.GetSection("PasswordSafe").Bind(options));

In your appsettings.json:

{
  "PasswordSafe": {
    "BaseUrl": "https://your-instance.ps.beyondtrustcloud.com/BeyondTrust/api/public/v3/",
    //"BaseUrl": "https://your-instance/BeyondTrust/api/public/v3/",
    "ApiKey": "your-api-key",
    "RunAsUsername": "your-username",
    "RunAsPassword": "your-password",
    "UseOAuth": false,
    "OAuthClientId": "your-client-id",
    "OAuthClientSecret": "your-client-secret",
    "TimeoutSeconds": 30,
    "DefaultPasswordDuration": 60,
    "AutoRefreshToken": true
  }
}

Configuration Options

Option Description Default
BaseUrl The base URL of your BeyondTrust Password Safe API Required
ApiKey API key for authentication Required for API Key auth
RunAsUsername Username for run-as authentication Required for API Key auth
RunAsPassword Password for run-as authentication Required for API Key auth
UseOAuth Whether to use OAuth authentication false
OAuthClientId OAuth client ID Required for OAuth auth
OAuthClientSecret OAuth client secret Required for OAuth auth
TimeoutSeconds HTTP request timeout in seconds 30
DefaultPasswordDuration Default duration for password requests in minutes 60
AutoRefreshToken Whether to automatically refresh the OAuth token true

Initialize the Client

public class PasswordService
{
    private readonly IPasswordSafeClient _client;
    
    public PasswordService(IPasswordSafeClient client)
    {
        _client = client; // Injected by the DI container
    }
    
    public async Task<string> GetPasswordByAccountId(string accountId)
    {
        var password = await _client.GetManagedAccountPasswordById(accountId);
        return password.Password;
    }
}

Refer to github repository for more details: https://github.com/keertipatip/bt-passwordsafe-api-csharp

License

This project is licensed under the MIT License.

Product Compatible and additional computed target framework versions.
.NET net8.0 is compatible.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed.  net9.0 was computed.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 was computed.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages

This package is not used by any NuGet packages.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version Downloads Last Updated
1.3.1 173 4/22/2025
1.3.0 92 4/19/2025
1.2.0 208 4/14/2025
1.1.0 196 4/14/2025
1.0.0 97 4/12/2025

Added secret-safe secrets retrieval functionality